ermac | 4e4095098376a1f4d6fda6a5047519a252d27853a3cf4def5c6e731a21592cdb | Triage

Submit
Reports

Overview

overview

Static

static

4e40950983...db.apk

android-9-x86

4e40950983...db.apk

android-10-x64

4e40950983...db.apk

android-11-x64

Sharing

General

Target

4e4095098376a1f4d6fda6a5047519a252d27853a3cf4def5c6e731a21592cdb
Size

1.1MB
Sample

240209-kv19lsbf84
MD5

5cfd5c4c94f7ddede2ef937bbe5d7722
SHA1

60d7e235c38c205d377d7d2e477a981c0629a221
SHA256

4e4095098376a1f4d6fda6a5047519a252d27853a3cf4def5c6e731a21592cdb
SHA512

f1cc7759849cbf300d885ae618f4771cf65af5ee34396fd831c62179c5a814f6acee73de39e0a26f075083b63a8660d713a18c5ab53781dad03eaa74a8ddbf38
SSDEEP

24576:KW4GI8JXs+C85Vv6S6pKZTY//db/C+/IBwjojy/2Pg/+e95:KgFXsX85Vv6S6pcTY/1jC+YwjXOPg/z5

Score

10^/10

ermac hook android infostealer rat trojan

Static task

static1

5 signatures

Behavioral task

behavioral1

Sample

4e4095098376a1f4d6fda6a5047519a252d27853a3cf4def5c6e731a21592cdb.apk

Resource

android-x86-arm-20231215-en

hook infostealer rat trojan

android-9-x86

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

4e4095098376a1f4d6fda6a5047519a252d27853a3cf4def5c6e731a21592cdb.apk

Resource

android-x64-20231215-en

hook infostealer rat trojan

android-10-x64

5 signatures

150 seconds

Behavioral task

behavioral3

Sample

4e4095098376a1f4d6fda6a5047519a252d27853a3cf4def5c6e731a21592cdb.apk

Resource

android-x64-arm64-20231215-en

hook infostealer rat trojan

android-11-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

hook

C2

93.123.39.235:3434

AES_key

Targets

- Target
  
  4e4095098376a1f4d6fda6a5047519a252d27853a3cf4def5c6e731a21592cdb
- Size
  
  1.1MB
- MD5
  
  5cfd5c4c94f7ddede2ef937bbe5d7722
- SHA1
  
  60d7e235c38c205d377d7d2e477a981c0629a221
- SHA256
  
  4e4095098376a1f4d6fda6a5047519a252d27853a3cf4def5c6e731a21592cdb
- SHA512
  
  f1cc7759849cbf300d885ae618f4771cf65af5ee34396fd831c62179c5a814f6acee73de39e0a26f075083b63a8660d713a18c5ab53781dad03eaa74a8ddbf38
- SSDEEP
  
  24576:KW4GI8JXs+C85Vv6S6pKZTY//db/C+/IBwjojy/2Pg/+e95:KgFXsX85Vv6S6pcTY/1jC+YwjXOPg/z5
Score

10^/10

hook infostealer rat trojan
- Hook
  Hook is an Android malware that is based on Ermac with RAT capabilities.
  rat trojan infostealer hook
- Makes use of the framework's Accessibility service
  Retrieves information displayed on the phone screen using AccessibilityService.
- Acquires the wake lock
- Reads information about phone network operator.
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

hookinfostealerrattrojan

behavioral2

hookinfostealerrattrojan

behavioral3

hookinfostealerrattrojan

© 2018-2025

Terms | Privacy